CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')


This vulnerability describes improper neutralization of special elements, which could result in modification of the intended OS command that is sent to a downstream component.
An attacker can execute malicious commands on target operating system and access the environments to which they weren't allowed to read or modify.
The weakness is introduced during Architecture and Design, Implementation stages.

Latest vulnerabilities for CWE-78


Description of CWE-78 on Mitre website